Ran into strict WDAC a little while ago, bypassed it using WinDbg Preview.

Responder not working? LLMNR/NBNS enabled in the environment?. Check for ADIDNS wildcard records preventing the fallback to older protocols. #redteam #redteamtips.

The difference between innovating or playing catch-up.

RT @_winterknife_: @cerbersec Here is the actual code if anyone wants to play with it: Just a random experiment lo….

They'll mimikatz your LSASS on DC01 before the SOC analyst finishes their coffee on Monday morning and looks at their dashboard.

Your average non-state APT doesn't use browser exploits for initial access. They don't give a shit about the kernel or the EDR, they don't deploy rootkits. They use phishing/breached creds w/ VPN, pwn your ADCS , then delete your backups and deploy ransomware, all loud as fuck.

Some people out here posting old tech and slapping a new sticker on it, steal other people's code and publish it as their own original work, acting big because they've got a bunch of skids in their comments, yet offended when actual infosec sees right through the bs. Be humble.

Malware development =/= red teaming. If you want to land an offensive security/RT role, go get some fundamental training as an operator. Good places to start are @hackthebox_eu and @_ZeroPointSec 's RTO certifications.

So since Microsoft retired MSOnline and AADInternals no longer works, what do people use to compromise Azure?.

I touched some asphalt 💪

you love to see it 💯.

Microsoft: *adds more security boundaries*.@0xBoku : hold my 🍺(probably).

RT @yudasm_: What if you skipped VirtualAlloc, skipped WriteProcessMemory and still got code execution?.We explored process injection using….

RT @almartiros: RedTeamTP is now public, link below. The repo is a proof of concept of how to utilize GitHub Actions to automate offensive….

For other people wondering about the shellcode part.

There's no such thing as a "main" thread in a process on Windows. TIL.

Hey @_dirkjan I've added Shadow Credentials options to however using coercion + AD DNS I cannot seem to relay to LDAP. Do you know if this is a protocol limitation?.

RT @rad9800: Join the waitlist today for the Deception Engineering platform.

New Chinese #BRICKSTORM backdoor analysis by NVISO:.

RT @hasherezade: My new blog for Check Point Research - check it out! 💙 // #ProcessInjection : #WaitingThreadHijacking.